[Cryptography] generated passphrases
Patrick Chkoreff
pc at fexl.com
Wed Aug 14 22:41:23 EDT 2019
Arnold Reinhold via cryptography wrote on 8/14/19 2:00 PM:
> But the reality is that almost no one is willing and able to memorize a 128-bit passphrase, indeed few will memorize an 80-bit passphrase. Any crypto currency or other security scheme that depends on people memorizing and entering very long passphrases is not going to gain wide consumer acceptance.
I don't have any problem remembering 128 bit passphrases composed of
words selected from something like Diceware. The mnemonic technique of
stringing the words together into a bizarre mental story works well.
Of course, I also write down passphrases in various ways and keep those
documents physically secure, in case I have a really bad "senior moment"
one day.
For a login passphrase, or a passphrase that unlocks a local private
key, you might only need 4 or 5 words, with a strength of 40 to 65 bits.
Anyone capable of handling digital currency should be also be capable
of remembering such a passphrase and writing it down reliably.
-- Patrick
More information about the cryptography
mailing list